CVE-2021-39090 - How a Missing HTTP Strict Transport Security Setting in IBM Cloud Pak for Security Leaked Sensitive Data
In 2021, a security flaw was discovered in IBM Cloud Pak for Security (CP4S), versions 1.10.. through 1.10.6.. This weakness, tracked as
CVE-2023-38367 - How Unauthenticated Attackers Can Control IBM Cloud Pak Foundational Services IdP (with Exploit Details)
In mid-2023, IBM disclosed a critical security issue—tracked as CVE-2023-38367—in its Cloud Pak Foundational Services Identity Provider (IdP) API. Affecting a range of
CVE-2023-27545 - How IBM Watson CloudPak for Data Data Stores Exposes Sensitive Data Locally
In March 2023, IBM disclosed a new security vulnerability in its flagship data platform, IBM Watson CloudPak for Data. Tracked as CVE-2023-27545, this flaw allows
CVE-2021-47012 - Use-After-Free Vulnerability in Linux Kernel's RDMA/siw (Simple Internet Wide-area RDMA)
In this long read, we’ll dive into CVE-2021-47012, a security issue affecting the Linux kernel's software RDMA implementation (siw). We’ll break
CVE-2021-46998 - Use-After-Free Vulnerability in Linux Kernel ENIC Driver (Exploit Details & Patch Explained)
CVE-2021-46998 is a critical vulnerability found in the Cisco ENIC (Ethernet NIC) driver of the Linux Kernel. This bug could lead to a _use-after-free_ scenario,
Episode
00:00:00
00:00:00